Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E3941/5818052445D111EE8A5CA6574AD9E6FC/1B18370013B311F0AC6E944A762E951A.roa
File: 1B18370013B311F0AC6E944A762E951A.roa (raw, json)
Hash identifier: NVMBrbFJ6GO3CdHpjCKo/lPShcbNb+afYHl6HdgnJCI=
Subject key identifier: E7:79:3D:33:18:EF:17:C7:14:81:BE:E3:90:60:C4:DD:F2:04:EC:79
Certificate issuer: /CN=F36E3941AF/serialNumber=456931501964CDB884B1475B56D68F3069C22AF2
Certificate serial: 0270
Authority key identifier: 45:69:31:50:19:64:CD:B8:84:B1:47:5B:56:D6:8F:30:69:C2:2A:F2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/RWkxUBlkzbiEsUdbVtaPMGnCKvI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E3941/5818052445D111EE8A5CA6574AD9E6FC/1B18370013B311F0AC6E944A762E951A.roa
Signing time: Mon 07 Apr 2025 13:20:42 +0000
ROA not before: Mon 07 Apr 2025 13:20:38 +0000
ROA not after: Mon 30 Apr 2035 13:20:38 +0000
asID: 328780
IP address blocks: 102.206.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E3941/5818052445D111EE8A5CA6574AD9E6FC/RWkxUBlkzbiEsUdbVtaPMGnCKvI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E3941/5818052445D111EE8A5CA6574AD9E6FC/RWkxUBlkzbiEsUdbVtaPMGnCKvI.mft
rsync://rpki.afrinic.net/repository/afrinic/RWkxUBlkzbiEsUdbVtaPMGnCKvI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 624 (0x270)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E3941AF, serialNumber=456931501964CDB884B1475B56D68F3069C22AF2
Validity
Not Before: Apr 7 13:20:38 2025 GMT
Not After : Apr 30 13:20:38 2035 GMT
Subject: CN=67f3d12a-5e10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:08:3f:1f:70:cb:26:a0:85:71:d0:ac:77:2e:
6f:86:b8:e6:13:d1:87:97:1d:8c:f1:ae:d4:d6:df:
03:93:bd:ee:49:19:72:81:f5:44:12:6d:d0:96:eb:
b9:80:d4:b5:39:68:97:da:84:44:01:e3:c2:0c:ad:
c2:f3:cb:df:e6:e1:54:0c:d4:68:8e:b6:f6:bd:9c:
6c:3e:c5:16:0b:c7:d7:0f:0f:b8:8f:f3:ae:bc:da:
d2:c3:87:45:6c:dd:a9:41:f6:96:d4:60:88:3a:29:
d5:66:cf:90:43:8b:74:32:dc:e6:45:a0:88:6c:77:
24:82:62:fa:47:68:02:7b:77:6d:a8:45:5a:0d:38:
51:98:f7:71:92:dd:c9:22:53:4e:6b:f8:21:89:97:
e7:37:54:9b:91:31:9e:5f:50:3e:a5:b0:ba:00:21:
fb:ad:86:b6:d1:49:82:63:75:db:77:49:dd:e4:72:
c1:43:a6:03:5a:24:59:97:82:44:5c:e7:4e:b8:19:
f0:01:57:48:42:14:72:2b:7e:b3:86:d8:f9:21:d2:
3a:06:6e:75:c1:10:c1:0b:72:c3:91:85:b4:3e:1f:
af:cb:16:29:48:fc:8a:f9:8f:ac:7b:20:c0:75:55:
e0:f9:1a:3e:f5:b6:51:22:d5:ad:66:d9:fd:31:7c:
6b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:79:3D:33:18:EF:17:C7:14:81:BE:E3:90:60:C4:DD:F2:04:EC:79
X509v3 Authority Key Identifier:
keyid:45:69:31:50:19:64:CD:B8:84:B1:47:5B:56:D6:8F:30:69:C2:2A:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3941/5818052445D111EE8A5CA6574AD9E6FC/RWkxUBlkzbiEsUdbVtaPMGnCKvI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/RWkxUBlkzbiEsUdbVtaPMGnCKvI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3941/5818052445D111EE8A5CA6574AD9E6FC/1B18370013B311F0AC6E944A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.206.200.0/24
Signature Algorithm: sha256WithRSAEncryption
85:2a:0e:ff:57:b7:3c:1e:e2:fa:06:ec:ee:74:9e:af:32:7e:
5f:19:1f:a5:a7:32:f5:49:d3:c1:f4:87:c1:d5:a7:20:89:3c:
16:0d:8a:59:ee:a1:ec:b0:17:b7:e3:98:e6:f7:bc:28:b5:fd:
b9:4d:cf:e2:59:f5:d8:bd:58:26:9b:14:2a:af:01:7e:ef:a4:
e0:5f:c9:1c:29:11:25:12:61:33:58:2a:d6:7d:b5:b3:5d:89:
6a:18:3d:88:06:ab:37:97:8e:9c:56:fe:4c:e3:78:cb:76:8b:
8a:90:d4:81:35:84:0b:be:f7:9f:82:f5:2a:f6:cb:d2:84:27:
b9:f7:8e:f0:77:ce:d5:ef:f2:25:60:4b:db:57:3c:cf:de:0e:
42:80:ec:19:b6:d8:4b:9c:d0:74:62:a7:bb:1f:2b:0f:40:f5:
a2:a8:9b:b2:37:c8:6e:ee:08:c3:9f:db:fa:23:25:d4:4f:a0:
73:18:62:c6:83:41:6d:17:69:6b:84:52:59:9d:eb:cc:95:29:
5e:25:e6:8e:7b:58:81:df:c3:b5:5d:87:c0:e9:3b:10:da:48:
04:3c:6e:78:d2:bb:12:24:06:7e:37:b3:a0:be:6d:23:bd:9f:
1b:ce:fd:8e:6a:2c:bf:79:27:06:41:00:8c:fc:51:43:24:2a:
ec:ee:54:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 06:06:37 2025 by rpki-client on console.sobornost.net